I would suggest your comments certainly warrant some further investigation, I would recommend get this into a Jira issue under the ELY project and we will take a closer look.
The fallback to FORM authentication is also interesting so please provide as much information as you can there.
Thank you for the quick reply! I will gather all of the required information to create a JIRA issue for what I'm assuming will be a Feature Request.
In regards to FORM authentication, we are not currently falling back to that.